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DETAILED ACTION 

1. This office action is in reply to an amendment filed on January 20, 2006 and 
Claims 1-24 are pending. 

2. Examiner indicated allowability in the previous office action. However, the 
indicated allowability of claim 1-24 is withdrawn in view of a close inspection of 
the previous reference(s) and the newly discovered reference(s) to Kamiya, 
Shigeo (hereinafter referred to as Kamiya) (U.S. Patent No. 4, 949, 238) 

3. The double patent rejection set forth in the previous office action has been 
successfully overcome as applicant filed a terminal disclaimer. 

Response to Arguments 

4. Applicant's argument filed on July 14, 2005 have been fully considered and they 
are not persuasive. In the previous office action examiner indicated allowability of 
claims 1-24. However a closer and further inspection of the reference(s) shows that all 
the limitation recited in the independent claims 1, 9 and 17 is disclosed by the 
reference on the record. 

Applicant referring to the independent claims 1, 9 and 17 argued that, Draves, 
the reference on the record, does not teach restricting exiecution of security sensitive 
instructions by associating a first security identification (ID) with instructions and 
obtaining a second security ID associated with a software code (different than 
instruction(s)). Instead, Draves pairs two sets of handles with keys for a single or same 
item, i.e., a. computer system resource shared between two different authorized 
processes ( a server and client process). By using the two sets of handles with keys for 
the shared resource, Draves ensures that two different authorized processes can access 
that shared resource. In this manner, Draves does not use two security IDS associated 
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two different items (the requested instruction(s) and the software code) for restricting 
the execution of security sensitive instructions. Based on the above indicated legal 
standard, it is respectfully submitted that Draves fails to anticipate independent claims 
1,9. and 17. 

Examiner disagrees with this argument, examiner would point out that Dravis 
on column 2, lines 27-31, disclose, the following. "The system provides for ensuring 
that a computer program is authorized to access a computer system resource. The 
system generates a system-wide resource table that has a resource entry for each 
allocated resource. Each resource entry contains a preferably non-forgeable key 
that uniquely identifies the resource. This indicates the fact that not only pairs keys 
are associated with both a single or same item, i.e., a computer system resource as but 
also associated several resources and each resources/ items are also uniquely 
identified by the non-forgeable keys. 

Examiner would also asserts that Dravis on column 3, lines 42-48, discloses the 
following, "In a preferred embodiment, the kernel maintains a system-wide resource 
table that is a hash table and that contains a resource entry corresponding to each 
resource allocated by the kernel. The allocated resources are identifled by a 
kernel-generated resource identifler. The system of the present invention uses 
resource identifiers that contain both a handle and a key (a handle. backslash. key 
pair)." 

This indicates the fact there is also several resources/ items which are identified 
by the resource identifier or key pair. 

Dravis further discloses the following, "When a process wishes to access the 
allocated resource, it passes the handle.backslash.key pair to the kernel. The kernel 
examines the resource entry indexed by the passed handle to determine whether the 
passed key is equal to the key in the indexed resource entry. The keys may not be equal 
for several reasons, including resource table compaction and attempted forgery." 
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[Column 3, lines 63-column 4, line 2]. This implies that the requesting process could be 
any process including an unauthorized process which is attempting forgery however 
forgery process is not able to access other resource, that it is not authorized since it 
does not have the right key pair and the kernel denies this process from accessing the 
resources by matching the key with the resource it is requesting. 

Examiner would point out Dravis in support of this discloses the following: 
"When no such resource entry is found, the kernel denies the process access to the 
resource. On the other hand, when a resource entry that contains a matching key is 
found, the kernel allows the process to access the resource." [Column 4, lines 7-10] 

Finally examiner asserts that Dravis on column 3, lines 39-41, discloses the 
main feature of the invention indicating that it is directed to a method and system 
providing secure access to resources. The system provides for ensuring that a 
computer program is authorized to access a computer system resource. And this 
implies that the invention is used to control access to any resources in the 
computer system by any computer programs. 

For the other part of the argument raised by the applicant and in order to clarify 
how each and every limitation of the claim is disclosed by the reference on the record 
the examiner would show the independent claims 9, 1 and 17 as follows. 

As per independent claims 9. 1 and 17 Draves discloses an apparatus, 
comprising: 

• A processor for running code thereon, [column 3, lines 39-42 
and column 1, lines 11-22 and figure 2, ref. Num "250") (As indicated on column 
3, lines 39-42, the invention is directed towards a method and system in a 
kernel of an operating system for providing secure access to computer system 
resources. The OS kernel is inherently operates in the processor. And as it is 
indicated on column 1, lines 39-42, the portion of the operating system that is 
responsible for the allocation and deallocation of resources is known as the 
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kernel. The kernel interacts with the shell and other programs as well as with 
the hardware devices on the system, including the processor (also called the 
central processing unit or CPU), memory and disk drives.) 

• For associating a first security identification (ID) with each of 
a plurality of instructions or a set of instructions that are to 

be executed by the processor; [column 3, lines 43-50 and column 3, lines 60- 
62] (As it is disclosed on column 3, lines 60-62, each process which is defined as 
concurrently executing computer programs on column 1, lines 14-15, meets the 
limitation each of a plurality of instructions or a set of instructions are 
inherently executed by the processor are associated with the resource identifier 
comprising the handle/key pair that is passed to the process/ programs/ set of 
instructions when requesting allocation of resources. Furthermore Draves on 
column 3, lines 43-50 discloses the following. In a preferred embodiment, the 
kernel maintains a system-wide resource table that is a hash table and that . 
contains a resource entry corresponding to each resource allocated by the 
kernel. The allocated resources are identified by a kernel-generated 
resource identifier. The system of the present invention uses resource 
identifiers that contain both a handle and a key (a handle. backslash. key pair). 
The key is a very large number (e.g., 128 bits) that uniquely identifies the 
resource) Wherein 

• The processor receives [column 3, lines 63-65; The OS kernel is 
inherently operates in the processor] a request to execute at least one of the 
plurality of instructions or set of instructions by the code running thereon 
obtains a second security ID associated with the code, [column 3, lines 60- 
62 and column 3, lines 39-41] (As it is disclosed on column 3, lines 60-62, each 
process requesting the allocation of resource which is defined as concurrently 
executing computer programs on column 1, lines 14-15, meets the limitation, a 
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request to execute at least one of the plurality of instructions or set of 
instructions by the code running thereon obtains resource identifier comprising, 
the handle /key pair that is uniquely identify the resources as explained on 
column 49-51 meets the limitation of obtaining a second security ID 
associated with the process/ program/ code) 

• Compares the second security ID with the flrst security ID, 
and executes the requested instruction or set of instructions providing 
that the second security ID matches the first security ID. [Column 4, lines 
8-10] (When a matching key is found, the kernel allows the process to 
access/ executes the requested instruction or set of instructions 
/resource/ program as explained on column 4, lines 8-10) 

Therefore the second security ID could be provided to a program which is 
attempting forgery, however would not be able to access the requested resources 
since its security ID/indentifier/Key pair would not be the same with the first 
Security ID which is provided to some other program. In other words application 
programs as explained on column 23-25 such as word programs and 
spreadsheet program could have a shared memory but one of the program would 
be able to access the resource of the other program if and only if it has one and 
the same key pairs /identifier otherwise it would be denied as explained on 
column 3, lines 60-column 4, line 11] 

Therefore each and every limitations of the independent claims are 
disclosed by the reference on the record namely Draves. 

The next argument by the applicant is referring to the dependent claims 4-6, 12- 
14 and 20-22. Applicant argued that the cited reference fail to provide any 
suggestion or motivation for modifying the prior art to arrive at Applicant's 
claimed invention. 
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Examiner disagrees with this argument, As to the argument made to the 
motivation, It is not necessary that the reference actually suggest, expressly 
or in so many words, the changes or improvements that applicant has made. 
The text for combining references is what the references as a whole would 
have suggested to one of ordinary skill in the art. See In re Sheckle, 168 
USPQ 716 (CCPA 1971) In re McLaghin 170 USPQ 209 (CCPA 1971). In re 
Young 159 USPQ 725 (CCPA 1968). 

Therefore the rejections remains to be valid unless and otherwise the claims are 
further amended and overcome the rejection without introducing a new matter. 

Claim Rejections - 35 USC §102 

5. The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that 
form the basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(b) the invention was patented or described in a printed publication in this or a 
foreign country or in public use or on sale in this country, more than one year prior to 
the date of application for patent in the United States. 

6. ^ Claims 1-3. 7-11.15-19 and 23>24 are rejected under 35 U.S.C, 102(b) as being 

anticipated by Richard P. Draves (hereinafter referred as Draves) (U.S. Patent 

No 5,802,590) 

As per claim 9 Draves discloses an apparatus, comprising: 

• A processor for running code thereon, [column 3, lines 39-42 
and column 1, lines 11-22 and figure 2, ref. Num "250"] (As indicated on column 
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3, lines 39-42, the invention is directed towards a method and system in a 
kernel of an operating system for providing secure access to computer system 
resources. The OS kernel is inherently operates in the processor. And as it is 
indicated on column 1, lines 39-42, the portion of the operating system that is 
responsible for the allocation and deallocation of resources is known as the 
kernel. The kernel interacts with the shell and other programs as well as with 
the hardware devices on the system, including the processor (also called the 
central processing unit or CPU), memory and disk drives.) 

• For associating a first security identification (ID) with each of 
a plurality of instructions or a set of instructions that are to 

be executed by the processor; [column 3, lines 43-50 and column 3, lines 60- 
62] (As it is disclosed on column 3, lines 60-62, each process which is defined as 
concurrently executing computer programs on column 1, lines 14-15, meets the 
limitation each of a plurality of instructions or a set of instructions are 
inherently executed by the processor are associated with the resource identifier 
comprising the handle /key pair that is passed to the process/ programs/ set of 
instructions when requesting allocation of resources. Furthermore Draves on 
column 3, lines 43-50 discloses the followirig. In a preferred embodiment, the 
kernel maintains a system-wide resource table that is a hash table and that 
contains a resource entry corresponding to each resource allocated by the 
kernel. The allocated resources are identified by a kernel-generated 
resource identifier. The system of the present invention uses resource 
identifiers that contain both a handle and a key (a handle. backslash. key pair). 
The key is a very large number (e.g., 128 bits) that uniquely identifies the 
resource) Wherein 

• The processor receives [column 3, lines 63-65; The OS kernel is 
inherently operates in the processor] a request to execute at least one of the 
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plurality of instructions or set of instructions by the code running thereon 
obtains a second security ID associated with the code, [column 3, lines 60- 
62 and column 3, lines 39-41] (As it is disclosed on column 3, lines 60-62, each 
process requesting the allocation of resource which is defined as concurrently 
executing computer programs on column 1, lines 14-15, meets the limitation, a 
request to execute at least one of the plurality of instructions or set of 
instructions by the code running thereon obtains resource identifier comprising 
. the handle/ key pair that is uniquely identify the resources as explained on 
column 49-51 meets the limitation of obtaining a second security ID 
associated with the process/program/code) 

• Compares the second security ID with the first security ID, and 
executes the requested instruction or set of instructions providing that the 
second security ID matches the first security ID. [Column 4, lines 8-10] 

(When a matching key is found, the kernel allows the process to 
access/executes the requested instruction or set of instructions ' 
/resource/ program as explained on column 4, lines 8-10) 

7. As per claim 1 . Claim 1 recites the method version of the independent claim 9 
and likewise rejected by the same analogy/ ground as that of claim 9. 

8. As per claim 17 . Claim 17 recites the same limitations as that of the 
independent claim 9 and therefore rejected by the same analogy/ ground as that of 
claim 9. 

9. As per claims 2, 10 and 18, Draves discloses the method/ apparatus/ article as 
applied to claims 1, 9 and 17 above. Furthermore, Draves discloses the 

method/ apparatus/ article comprising denying the execution of the requested 
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instruction or set of instructions providing that the first and second security IDs 
mismatch. [Column 4, lines 5-8; figure 8, ref. Num "830"] 

10. As per claims 3, 11 and 19. Draves discloses the method/ apparatus/ article as 
applied to claims 1, 9 and 17 above. Furthermore, Draves discloses the 

method /apparatus /article wherein associating a first security identification (ID) further 
comprises: storing a first security identification (ID) with each of a plurality of 
instructions or a set of instructions that are to be executed by a processor. [Column 3, 
lines 59-62] (The stored resource contains a copy of the key meets the recitation of this 
claim.) 

11. As per claims 7, 15 and 23. Draves discloses the method/apparatus/article as 
applied to claims 1, 9 and 17 above. Furthermore, Draves discloses the 

method /apparatus /article wherein comparing the second security ID with the first 
security ID further comprises: comparing a portion of the second security ID with a 
portion of the first security ID. [Column 4, lines 8-10] ( A process access for executing 
the requested instruction or set of instructions or a program or in general accessing the 
resource is allowed when a match is found by comparing all pprtions of the first and 
second identification) 

12. As per claims 8. 16 and 24. Draves discloses the method /apparatus/ article as 
applied to claims 7, 15 and 23 above. Furthermore, Draves discloses the 

method /apparatus /article wherein executing the requested instruction or set of 
instructions providing that the second secuity ID matches the first security ID further 
comprises: 

• Executing the requested instruction or set of instructions 

providing that the portion of the second security ID matches the portion of the 
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* 

first security ID. [Column 4, lines 8-10] ( A process access for executing the 
requested instruction or set of instructions or a program or in general accessing 
the resource is allowed when a match is found by comparing all portions of the 
first and second identification) 

Claim Rejections - 35 USC §103 

13. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for 

all obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or 
described as set forth in section 102 of this title, if the differences between the subject 
matter sought to be patented and the prior art are such that the subject matter as a 
whole would have been obvious at the time the invention was made to a person having 
ordinary skill in the art to which said subject matter pertains. Patentability shall not be 
negatived by the manner in which the invention was made. 

14. Claims 4-6. 12-14 and 20-22 are rejected under 35 \J.S,C. 103(a) as 
being unpatentable over Richard P. Draves (hereinafter referred as Draves) 
(U.S. Patent No 5,802, 590) in view of Krueger et at, (hereinafter referred to as 
Krueger) (U.S. Patent No, 4,962,533) 

15. As per claims 4-6. 12-14 and 20-22 . Draves discloses 

• A processor (Figure 2, ref. Num "250"] for running code 
thereon, [Column 1, lines 13-14; column 4; lines 16-17] and for associating a 
first security identiflcation (ID) with each of a plurality of instructions or a 
set of instructions that are to be executed by the processor; [Figure 3, ref. 
"handle/ key"] (As shown on figure 3, for each multiplicity/ plurality of processes 
a handle/ key pair is associated.) 



Draves does not explicitly discloses 
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• A first security identification (ID) further comprises: 

Classifying at least one instruction or set of instructions from a plurality 

of instructions that are to be executed by a processor as being security sensitive; 

And associating a first security identification (ID) with, each of the instructions or 

set of instructions that are. classified as security sensitive. 

However, in the same field of endeavor, Krueger discloses 

Classifying at least one instruction or set of instructions from a plurality 
of instructions that are to be executed by a processor as being security 
sensitive and associating a first security identification (ID) with each of 
the instructions or set of instructions that are classified as security 
sensitive; [Column 2, lines 43-46; abstract and ] (computer system uses 
security labels for every word in memory and according to the present 
invention, in a computer system every word in the memoiy has a 
corresponding label/ security identification. This label indicates the 
security classification, and compartments if any, of that word of data) 

It would have been obvious to one having ordinary skill in the art, at the time 
the invention was made, to combine the features of having a classification for one 
instructions/ program and associating security identification/ label with each 
instructions or set of instructions as per teachings of Krueger in to the method as 
taught by Draves, in order provide a security technique for a computer system in which 
data retains its classification with a straightforward and reliable mechanism for 
separating sensitive and non-sensitive data within the system, [see Krueger column 2, 
lines 19-21 and 39-41] 
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16. The indicated allowability of claims 1-24 is also withdrawn in view of the newly 
discovered reference(s) to Kamiya, Shigeo (hereinafter referred to as Kamiya) 
(U.S. Patent No. 4, 949, 238) 

17. Claims 13. 7-ll,1519 and 23 24 are rejected under 35 U.S.C. 102(b) as being 
anticipated by Kamiya, Shigeo (hereinafter referred to as Kamiya) (U.S. Patent 
No. 4, 949, 238) 

18. As per claims Claims 1-3. 7-11.15-19 and 23-24 . Kamiya discloses a method, 
comprising 

• Associating a first security identification (ID) with each of a 
plurality of instructions or a set of instructions that are to be executed by a 
processor [Column 2, line 67-column 3, line 10; column 4, lines 49-68; column 5, lines 
26-27 and figure l].(the plurality of branch instructions meets the limitation of plurality 
of instruction as it is disclosed on column 2, line 67-column 3, line 10. And the 
true/mask register shown on figure 1, ref. Num "122" meets the limitation of the first 

. security ID.) 

• Requesting to execute at least one of the plurality of instructions of 
set of instructions by a software code running on the processor; [Column 5, lines 
23-25) (branch instruction executed ) 

• obtaining a second security ID associated with the software code 
running on the processor; (column 3, line 41-42, "the current privilege register") 

• comparing the second security with the first security ID ; [column 3, 
lines 35-42] and 

• Executing the requested instruction or set of instructions [column 2; 
lines 22-24, "the succeeding microinstruction is normally selected"] providing that the 
second security ID matches the first security ID.[column 2, lines 22-24, 

("determined to be true" meets the limitation of the second security ID matches the first 
security ID) 
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19. Claims 4-6. 12-14 and 20-22 are rejected under 35 U.S.C. 103(a) as being 

unpatentable over Kamiya, Shigeo (hereinafter referred to as Kamiya) (U.S. 
Patent No. 4, 949, 238) in view of Krueger et al, (hereinafter referred to as 
Krueger) (U.S. Patent No, 4,962,533) 

20. As per Claims 4-6, 12-14 and 20-22 Kamiva discloses a method, comprising 

• Associating a first security identification (ID) with each of a 
plurality of instructions or a set of instructions that are to be executed by a 
processor [Column 2, line 67-column 3, line 10; column 4, lines 49-68; column 5, lines 
26-27 and figure l].(the plurality of branch instructions meets the limitation of plurality 
of instruction as it is disclosed on column 2, line 67-column 3, line 10. And the 
true/ mask register shown on figure 1, ref. Num "122" meets the limitation of the first 
security ID.) 

• Requesting to execute at least one of the plurality of instructions of 
set of instructions by a software code running on the processor; [Column 5, lines 
23-25) (branch instruction executed ) 

• obtaining a second security ID associated with the software code 
running on the processor; (column 3, line 41-42, "the current privilege register") 

• comparing the second security with the first security ID ; [column 3, 
lines 35-42] and 

• Executing the requested instruction or set of instructions [column 2, 
lines 22-24, "the succeeding microinstruction is normally selected"] providing that the 
second security ID matches the first security ID.[column 2, lines 22-24, 

("determined to be true** meets the limitation of the second security ID matches the first 
security ID) 

Kamiya does not explicitly discloses 

• A first security identification (ID) further comprises: 
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Classifying at least one instruction or set of instructions from a plurality 
of instructions that are to be executed by a processor as being security sensitive; 
And associating a first security identification (ID) with each of the instructions or 
set of instructions that are classified as security sensitive. 

However, in, the same field of endeavor, Krueger discloses 

Classifying at least one instruction or set of instructions from a plurality 
of instructions that are to be executed by a processor as being security 
sensitive and associating a first security identification (ID) with each of 
the instructions or set of instructions that are classified as security 
sensitive; [Column 2, lines 43-46; abstract and ] (computer system uses 
security labels for every word in memory and according to the present 
invention, in a computer system every word in the memory has a 
corresponding label/ security identification. This label indicates the 
security classification, and compartments if any, of that word of data) 

It would have been obvious to one having ordinary skill in the art, at the time 
the invention was made, to combine the features of having a classification for one 
instructions/ program and associating security identification /label with each 
instructions or set of instructions as per teachings of Krueger in to the method as 
taught by Kamiya, in order provide a security technique for a computer system in 
which data retains its classification with a straightforward and reliable mechanism for 
separating sensitive and non-sensitive data within the system. [see Krueger column 2, 
lines 19-21 and 39-41] 
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Conclusion 



Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Samson B Lemma whose telephone number is 571- 
272-3806. The examiner can normally be reached on Monday-Friday (8:00 am— 4: 
30 pm). 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, BARRON. JR GILBERTO can be reached on 571-272-3799. The fax 
phone number for the organization where this application or proceeding is assigned 
is 571-273-8300. 

Information regarding the status of an application may be obtained from the Patent 
Application Information Retrieval (PAIR) system. Status information for published 
applications may be obtained from either Private PAIR or Public PAIR. Status 
information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http./Zpair-direct.uspto.gov. 
Should you have questions on access to the Private PAIR system, contact the 
Electronic Business Center (EBC) at 866-2 17-9 197 (toll-free). 
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